program:
r0 = syz_open_dev$dri(&(0x7f0000000340), 0x2, 0xc8d03)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f0000000000)={<r1=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r0, 0xc03064ca, &(0x7f00000000c0)={&(0x7f0000000040)=[r1], 0xfffffffffffffffe, 0xfffffffffffeffff, 0x3ffffffffffffe17, 0xb})
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f0000000080)={<r2=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_SIGNAL(0xffffffffffffffff, 0xc01864cd, &(0x7f0000000180)={&(0x7f0000000100)=[r1, r1, r1, r2], &(0x7f0000000140)=[0xfffffffffffffffd], 0x4})

[   74.852630][ T5321] Bluetooth: hci0: command tx timeout
[   75.052712][ T5343] ------------[ cut here ]------------
[   75.066984][ T5343] WARNING: mm/page_alloc.c:5186 at __alloc_frozen_pages_noprof+0x2c8/0x370, CPU#0: syz.0.0/5343
[   75.074428][ T5343] Modules linked in:
[   75.085986][ T5343] CPU: 0 UID: 0 PID: 5343 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   75.103192][ T5343] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.109474][ T5343] RIP: 0010:__alloc_frozen_pages_noprof+0x2c8/0x370
[   75.114241][ T5343] Code: 74 10 4c 89 e7 89 54 24 0c e8 c4 ad 0d 00 8b 54 24 0c 49 83 3c 24 00 0f 85 a5 fe ff ff e9 a6 fe ff ff c6 05 33 59 51 0d 01 90 <0f> 0b 90 e9 18 ff ff ff a9 00 00 08 00 48 8b 4c 24 10 4c 8d 44 24
[   75.143280][ T5343] RSP: 0018:ffffc9000ccdf8e0 EFLAGS: 00010246
[   75.146919][ T5343] RAX: ffffc9000ccdf900 RBX: 0000000000000016 RCX: 0000000000000000
[   75.151337][ T5343] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000ccdf948
[   75.155361][ T5343] RBP: ffffc9000ccdf9c8 R08: ffffc9000ccdf947 R09: 0000000000000000
[   75.175954][ T5343] R10: ffffc9000ccdf920 R11: fffff5200199bf29 R12: 0000000000000000
[   75.180391][ T5343] R13: 1ffff9200199bf20 R14: 0000000000040cc0 R15: dffffc0000000000
[   75.184453][ T5343] FS:  00007f123b4f86c0(0000) GS:ffff88808d416000(0000) knlGS:0000000000000000
[   75.188588][ T5343] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.208338][ T5343] CR2: 00007f123a7d4330 CR3: 00000000114a1000 CR4: 0000000000352ef0
[   75.213203][ T5343] Call Trace:
[   75.215158][ T5343]  <TASK>
[   75.216799][ T5343]  ? stack_depot_save_flags+0x33/0x810
[   75.223226][ T5343]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   75.226861][ T5343]  ? kasan_save_free_info+0x46/0x50
[   75.242648][ T5343]  ? __kasan_slab_free+0x5c/0x80
[   75.244591][ T5343]  ? policy_nodemask+0x27c/0x720
[   75.247268][ T5343]  alloc_pages_mpol+0x232/0x4a0
[   75.249990][ T5343]  ___kmalloc_large_node+0x4e/0x150
[   75.252241][ T5343]  __kmalloc_large_node_noprof+0x18/0x90
[   75.254548][ T5343]  __kmalloc_noprof+0x4c9/0x800
[   75.256642][ T5343]  ? drm_syncobj_array_find+0x3a/0x450
[   75.271803][ T5343]  ? __lock_acquire+0x6b6/0x2cf0
[   75.274609][ T5343]  drm_syncobj_array_find+0x3a/0x450
[   75.277001][ T5343]  drm_syncobj_timeline_wait_ioctl+0x1b7/0x560
[   75.294979][ T5343]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[   75.298784][ T5343]  drm_ioctl_kernel+0x2cf/0x390
[   75.301139][ T5343]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[   75.303956][ T5343]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[   75.306217][ T5343]  drm_ioctl+0x67f/0xb10
[   75.308139][ T5343]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[   75.311839][ T5343]  ? __pfx_drm_ioctl+0x10/0x10
[   75.331068][ T5343]  ? __fget_files+0x2a/0x420
[   75.335100][ T5343]  ? bpf_lsm_file_ioctl+0x9/0x20
[   75.337907][ T5343]  ? __pfx_drm_ioctl+0x10/0x10
[   75.344821][ T5343]  __se_sys_ioctl+0xfc/0x170
[   75.346849][ T5343]  do_syscall_64+0xec/0xf80
[   75.353490][ T5343]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.356284][ T5343]  ? trace_irq_disable+0x37/0x100
[   75.363590][ T5343]  ? clear_bhb_loop+0x60/0xb0
[   75.366233][ T5343]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.379341][ T5343] RIP: 0033:0x7f123a58f7c9
[   75.381562][ T5343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.402472][ T5343] RSP: 002b:00007f123b4f8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   75.412460][ T5343] RAX: ffffffffffffffda RBX: 00007f123a7e5fa0 RCX: 00007f123a58f7c9
[   75.415885][ T5343] RDX: 00002000000000c0 RSI: 00000000c03064ca RDI: 0000000000000003
[   75.425849][ T5343] RBP: 00007f123a613f91 R08: 0000000000000000 R09: 0000000000000000
[   75.441702][ T5343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   75.445171][ T5343] R13: 00007f123a7e6038 R14: 00007f123a7e5fa0 R15: 00007fff47332458
[   75.448754][ T5343]  </TASK>
[   75.451981][ T5343] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   75.473548][ T5343] CPU: 0 UID: 0 PID: 5343 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   75.477359][ T5343] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.481765][ T5343] Call Trace:
[   75.483329][ T5343]  <TASK>
[   75.484752][ T5343]  vpanic+0x1e0/0x670
[   75.486608][ T5343]  panic+0xb9/0xc0
[   75.488379][ T5343]  ? __pfx_panic+0x10/0x10
[   75.495057][ T5343]  __warn+0x317/0x4b0
[   75.496962][ T5343]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   75.515641][ T5343]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   75.518449][ T5343]  __report_bug+0x288/0x500
[   75.520502][ T5343]  ? unwind_next_frame+0xa5/0x23d0
[   75.522618][ T5343]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   75.525047][ T5343]  ? __pfx___report_bug+0x10/0x10
[   75.528121][ T5343]  ? is_bpf_text_address+0x26/0x2b0
[   75.540671][ T5343]  ? is_bpf_text_address+0x292/0x2b0
[   75.543363][ T5343]  ? is_bpf_text_address+0x26/0x2b0
[   75.546417][ T5343]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   75.552093][ T5343]  report_bug+0x16a/0x220
[   75.558832][ T5343]  ? __alloc_frozen_pages_noprof+0x2c8/0x370
[   75.562748][ T5343]  ? __alloc_frozen_pages_noprof+0x2ca/0x370
[   75.567027][ T5343]  handle_bug+0x98/0x200
[   75.581890][ T5343]  exc_invalid_op+0x1a/0x50
[   75.583970][ T5343]  asm_exc_invalid_op+0x1a/0x20
[   75.586259][ T5343] RIP: 0010:__alloc_frozen_pages_noprof+0x2c8/0x370
[   75.589108][ T5343] Code: 74 10 4c 89 e7 89 54 24 0c e8 c4 ad 0d 00 8b 54 24 0c 49 83 3c 24 00 0f 85 a5 fe ff ff e9 a6 fe ff ff c6 05 33 59 51 0d 01 90 <0f> 0b 90 e9 18 ff ff ff a9 00 00 08 00 48 8b 4c 24 10 4c 8d 44 24
[   75.614828][ T5343] RSP: 0018:ffffc9000ccdf8e0 EFLAGS: 00010246
[   75.617702][ T5343] RAX: ffffc9000ccdf900 RBX: 0000000000000016 RCX: 0000000000000000
[   75.621249][ T5343] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000ccdf948
[   75.624446][ T5343] RBP: ffffc9000ccdf9c8 R08: ffffc9000ccdf947 R09: 0000000000000000
[   75.627606][ T5343] R10: ffffc9000ccdf920 R11: fffff5200199bf29 R12: 0000000000000000
[   75.647345][ T5343] R13: 1ffff9200199bf20 R14: 0000000000040cc0 R15: dffffc0000000000
[   75.650711][ T5343]  ? stack_depot_save_flags+0x33/0x810
[   75.652926][ T5343]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[   75.655518][ T5343]  ? kasan_save_free_info+0x46/0x50
[   75.673894][ T5343]  ? __kasan_slab_free+0x5c/0x80
[   75.676670][ T5343]  ? policy_nodemask+0x27c/0x720
[   75.680056][ T5343]  alloc_pages_mpol+0x232/0x4a0
[   75.682065][ T5343]  ___kmalloc_large_node+0x4e/0x150
[   75.684148][ T5343]  __kmalloc_large_node_noprof+0x18/0x90
[   75.686447][ T5343]  __kmalloc_noprof+0x4c9/0x800
[   75.688443][ T5343]  ? drm_syncobj_array_find+0x3a/0x450
[   75.692382][ T5343]  ? __lock_acquire+0x6b6/0x2cf0
[   75.696930][ T5343]  drm_syncobj_array_find+0x3a/0x450
[   75.703856][ T5343]  drm_syncobj_timeline_wait_ioctl+0x1b7/0x560
[   75.706949][ T5343]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[   75.714323][ T5343]  drm_ioctl_kernel+0x2cf/0x390
[   75.716346][ T5343]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[   75.724317][ T5343]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[   75.732123][ T5343]  drm_ioctl+0x67f/0xb10
[   75.738854][ T5343]  ? __pfx_drm_syncobj_timeline_wait_ioctl+0x10/0x10
[   75.749801][ T5343]  ? __pfx_drm_ioctl+0x10/0x10
[   75.752169][ T5343]  ? __fget_files+0x2a/0x420
[   75.754276][ T5343]  ? bpf_lsm_file_ioctl+0x9/0x20
[   75.756562][ T5343]  ? __pfx_drm_ioctl+0x10/0x10
[   75.758792][ T5343]  __se_sys_ioctl+0xfc/0x170
[   75.760929][ T5343]  do_syscall_64+0xec/0xf80
[   75.763036][ T5343]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.783507][ T5343]  ? trace_irq_disable+0x37/0x100
[   75.786134][ T5343]  ? clear_bhb_loop+0x60/0xb0
[   75.788192][ T5343]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.800623][ T5343] RIP: 0033:0x7f123a58f7c9
[   75.802703][ T5343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.820316][ T5343] RSP: 002b:00007f123b4f8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   75.829964][ T5343] RAX: ffffffffffffffda RBX: 00007f123a7e5fa0 RCX: 00007f123a58f7c9
[   75.837984][ T5343] RDX: 00002000000000c0 RSI: 00000000c03064ca RDI: 0000000000000003
[   75.841697][ T5343] RBP: 00007f123a613f91 R08: 0000000000000000 R09: 0000000000000000
[   75.845331][ T5343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   75.850879][ T5343] R13: 00007f123a7e6038 R14: 00007f123a7e5fa0 R15: 00007fff47332458
[   75.865942][ T5343]  </TASK>
[   75.871420][ T5343] Kernel Offset: disabled
[   75.875534][ T5343] Rebooting in 86400 seconds..